GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,063
Composer 4,318
Erlang 31
GitHub Actions 21
Go 2,074
Maven 5,249
npm 3,746
NuGet 674
pip 3,434
Pub 12
RubyGems 892
Rust 880
Swift 37

Unreviewed advisories

All unreviewed 241,073

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

281 advisories

Filter by severity

Sort by

Least recently updated

An issue discovered in Alldata v0.4.6 allows attacker to run arbitrary commands via the processId... Moderate Unreviewed

CVE-2024-29435 was published Apr 1, 2024

A vulnerability has been found in Tenda FH1205 2.0.0.7(775) and classified as critical. Affected... Moderate Unreviewed

CVE-2024-3009 was published Mar 28, 2024

A vulnerability has been found in Tenda FH1203 2.0.1.6 and classified as critical. This... Moderate Unreviewed

CVE-2024-2991 was published Mar 27, 2024

A vulnerability has been found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected... Moderate Unreviewed

CVE-2024-2982 was published Mar 27, 2024

An issue in TRENDnet TEW-822DRE v.1.03B02 allows a local attacker to execute arbitrary code via... Moderate Unreviewed

CVE-2023-51835 was published Feb 29, 2024

Splinefont in FontForge through 20230101 allows command injection via crafted filenames. Moderate Unreviewed

CVE-2024-25081 was published Feb 26, 2024

Splinefont in FontForge through 20230101 allows command injection via crafted archives or... Moderate Unreviewed

CVE-2024-25082 was published Feb 26, 2024

A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_20230719. It has been rated as... Moderate Unreviewed

CVE-2024-1781 was published Feb 23, 2024

An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2023-47218 was published Feb 13, 2024

In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an authenticated user with network... Moderate Unreviewed

CVE-2023-49716 was published Feb 9, 2024

An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2023-41282 was published Feb 2, 2024

An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2023-41283 was published Feb 2, 2024

An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2023-41281 was published Feb 2, 2024

A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical.... Moderate Unreviewed

CVE-2024-0919 was published Jan 26, 2024

A vulnerability was found in TRENDnet TEW-822DRE 1.03B02. It has been declared as critical. This... Moderate Unreviewed

CVE-2024-0920 was published Jan 26, 2024

A vulnerability in the web-based management interface of the Cisco WAP371 Wireless-AC/N Dual... Moderate Unreviewed

CVE-2024-20287 was published Jan 17, 2024

An attacker with access to a Management Console user account with the editor role could escalate... Moderate Unreviewed

CVE-2024-0507 was published Jan 16, 2024

A vulnerability classified as critical was found in Totolink X2000R 1.0.0-B20221212.1452.... Moderate Unreviewed

CVE-2024-0579 was published Jan 16, 2024

A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130. It has been rated as... Moderate Unreviewed

CVE-2024-0291 was published Jan 8, 2024

In Red Hat Advanced Cluster Security (RHACS), it was found that some security related HTTP... Moderate Unreviewed

CVE-2023-4958 was published Dec 12, 2023

SAP Solution Manager - version 720, allows an authorized attacker to execute certain deprecated... Moderate Unreviewed

CVE-2023-49587 was published Dec 12, 2023

An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary... Moderate Unreviewed

CVE-2023-24046 was published Dec 5, 2023

A vulnerability in a specific Cisco ISE CLI command could allow an authenticated, local attacker... Moderate Unreviewed

CVE-2023-20170 was published Nov 1, 2023

A vulnerability in the ClearPass Policy Manager web-based management interface allows remote... Moderate Unreviewed

CVE-2023-43510 was published Oct 25, 2023

?A command injection vulnerability exists in Trane XL824, XL850, XL1050, and Pivot thermostats... Moderate Unreviewed

CVE-2023-4212 was published Aug 22, 2023

Previous 1 2 3 4 5 6 7 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

281 advisories